BackBox News
Latest news and insights on Security
Company Blogs
Hacking Tools
- SafeLine - Serve As A Reverse Proxy To Protect Your Web Services From Attacks And Exploits
- PolyDrop - A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
- Secator - The Pentester'S Swiss Knife
- Damn-Vulnerable-Drone - An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
- File-Unpumper - Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
- Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests
- Imperius - Make An Linux Kernel Rootkit Visible Again
- BYOSI - Evade EDR's The Simple Way, By Not Touching Any Of The API's They Hook
- Psobf - PowerShell Obfuscator
- ModTracer - ModTracer Finds Hidden Linux Kernel Rootkits And Then Make Visible Again
Exploit DB
- [webapps] dizqueTV 1.5.3 - Remote Code Execution (RCE)
- [webapps] openSIS 9.1 - SQLi (Authenticated)
- [webapps] reNgine 2.2.0 - Command Injection (Authenticated)
- [dos] Windows TCP/IP - RCE Checker and Denial of Service
- [webapps] Gitea 1.22.0 - Stored XSS
- [webapps] Invesalius3 - Remote Code Execution
- [webapps] NoteMark < 0.13.0 - Stored XSS
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Authentication Bypass
- [webapps] Elber ESE DVB-S/S2 Satellite Receiver 1.5.x - Device Config
- [webapps] Elber Wayber Analog/Digital Audio STL 4.00 - Authentication Bypass
FBI: North Korea Aggressively Hacking Cryptocurrency Firms
/in General NewsThe FBI warns of North Korean threat actors conducting social engineering campaigns targeting employees in the cryptocurrency industry.
The post FBI: North Korea Aggressively Hacking Cryptocurrency Firms appeared first on SecurityWeek.
SecurityWeek – Read More
CEO’s Arrest Will Likely Not Dampen Cybercriminal Interest in Telegram
/in General NewsIn recent years, the platform has become a go-to tool for executing almost all conceivable cybercriminal activity.
darkreading – Read More
Damn Vulnerable UEFI: Simulate Real-world Firmware Attacks
/in General NewsDVUEFI was created to assist ethical hackers, security researchers, and firmware enthusiasts in beginning their journey into UEFI firmware security by providing examples to explore potential vulnerabilities.
Cyware News – Latest Cyber News – Read More
AI startup You.com raises $50 million, predicts ‘more AI agents than people’ by 2025
/in General NewsYou.com secures $50M in Series B funding to transform enterprise AI with ‘productivity engines’, aiming to boost workplace efficiency and combat ‘AI sprawl’.Read More
Security News | VentureBeat – Read More
The New Effective Way to Prevent Account Takeovers
/in General NewsAccount takeover attacks have emerged as one of the most persistent and damaging threats to cloud-based SaaS environments. Yet despite significant investments in traditional security measures, many organizations continue to struggle with preventing these attacks. A new report, “Why Account Takeover Attacks Still Succeed, and Why the Browser is Your Secret Weapon in Stopping Them” argues that the
The Hacker News – Read More
Verkada to Pay $2.95 Million for Alleged CAN-SPAM Act Violations
/in General NewsHackers exploited a vulnerability in Verkada’s customer support server, gaining access to the Command platform and extracting video footage and customer data. Another incident involved a hacker installing the Mirai botnet on Verkada’s network server.
Cyware News – Latest Cyber News – Read More
FTC: Over $110 Million Lost to Bitcoin ATM Scams in 2023
/in General NewsThe most common scams involve government impersonation, business impersonation, and tech support, where scammers persuade victims to withdraw cash from their bank accounts and deposit it into Bitcoin ATMs.
Cyware News – Latest Cyber News – Read More
Malwarebytes review: Solid, free protection with a user-friendly interface
/in General NewsMalwarebytes offers both free and premium antivirus services to help protect your device. Here’s what to know.
Latest stories for ZDNET in Security – Read More
Swan Bitcoin Alerts Users of Phishing Emails Carrying Fake Data Breach Notice
/in General NewsSwan Bitcoin CEO Cory Klippsten has warned users about phishing emails targeting the platform’s users. The scam involves fake “Data Breach Notice” emails, possibly linked to the Klaviyo and HubSpot data breaches in 2022.
Cyware News – Latest Cyber News – Read More
Three UK Men Convicted of Running Website Behind Fraud Calls During COVID-19 Lockdown
/in General NewsThe mastermind behind the operation, Callum Picari, along with his accomplices Vijayasidhurshan Vijayanathan and Aza Siddeeque, were arrested by National Crime Agency (NCA) officers in March 2021.
Cyware News – Latest Cyber News – Read More